You can determine whether the Distribution password for a specific user is the same as the password in the connected system. Perform the following steps to check the password synchronization status:
In Identity Console, select Password Synchronization > Password Status.
Browse and select a user for which you want to check the password status.
The following password statuses can be seen:
Passwords are synchronized.
Passwords are NOT synchronized.
The password status is unknown, because the connected system cannot be contacted to request a password check.
An error has occurred.
NOTE:To see more details about each of the above statuses, you must mouse-over the status under the Password Status column.
The Password Status task causes the driver to perform a Check Object Password action. Not all drivers support password check. Those that do must contain a password-check capability in the driver's manifest. Identity Console does not allow password check operations to be sent to drivers that do not contain this capability in the manifest.
The Check Object Password action checks the Distribution password. If the Distribution password is not being updated, Check Object Password might report that passwords are not synchronized.
The Distribution password is not updated if either of the following occurs:
You are using the synchronization method using NDS Password to Synchronize or Using Universal Password to Synchronize. For more information, see Creating a Password Policy with Custom Settings.
NOTE:The Password Status action checks the NDS Password instead of the Universal password for Identity Vault. Therefore, if the user's password policy does not specify to synchronize the NDS password with the Universal password, the passwords are always reported as being not synchronized. In fact, the Distribution password and the password on the connected system might be in sync, but Check Password Status won't be accurate unless both the NDS password and the Distribution password are synchronized with the Universal password.